Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
P
P
pocteg2015-02-27 15:33:47
Java
pocteg, 2015-02-27 15:33:47

How to make protection from xss at the level of the entire application in spring MVC (3.x)?

Good afternoon!
I have a spring MVC application. I need to add protection against CSS attacks at the application level. How can I make sure that all incoming parameters from any requests are automatically escaped? The option when each request is separate, or escaping when outputting to jsp is not suitable, because there is a danger of forgetting any parameter.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
N
Nikolai Pavlov, 2015-02-27
@gurinderu

In web.xml

<context-param>
    <param-name>defaultHtmlEscape</param-name>
    <param-value>true</param-value>
</context-param>

Similar questions
E
e1s2015-05-26 11:24:41
How to get rid of ban (number of questions) on stackoverflow.com? 2Reply
C
ConstantineSolovei2017-10-06 10:57:05
How to get your first job in IT? 12Reply
D
duck_nukem2017-10-27 16:04:56
Is there a string length limit in prompt()? 2Reply
S
Sergey Sergey2021-04-09 14:49:05
Knowing the syntax of the java language is it possible to write simple programs like a calendar.? And what role does the algorithm play in Java? 1Reply
K
Kairat2019-10-01 15:03:21
Apache Camel routing with single output queue? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question